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~ The MAILING DATE of this communication appears on the cover sheet with the correspondence address- 

All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included 
herewith (or previously mailed), a Notice of Allowance (PTOL-85) or other appropriate communication will be mailed in due course. THIS 
NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from issue at the initiative 
of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1 308. 

1 . K| This communication is responsive to 1/1 5/2009 . 

2. The allowed claim(s) is/are original claims 3-9,11, 13-23,26, 30-46,49, 53-54, 56-66, 70- 79,81,84-101 . 

3. □ Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 

a) DAN b)DSome* c) □ None of the: 

1. D Certified copies of the priority documents have been received. 

2. Q Certified copies of the priority documents have been received in Application No. . 

3. O Copies of the certified copies of the priority documents have been received in this national stage application from the 

International Bureau (PCT Rule 17.2(a)). 
* Certified copies not received: . 

Applicant has THREE MONTHS FROM THE "MAILING DATE" of this communication to file a reply complying with the requirements 
noted below. Failure to timely comply will result in ABANDONMENT of this application. 
THIS THREE-MONTH PERIOD IS NOT EXTENDABLE. 

4. □ A SUBSTITUTE OATH OR DECLARATION must be submitted. Note the attached EXAMINER'S AMENDMENT or NOTICE OF 

INFORMAL PATENT APPLICATION (PTO-152) which gives reason(s) why the oath or declaration is deficient. 

5. □ CORRECTED DRAWINGS ( as "replacement sheets") must be submitted. 

(a) □ including changes required by the Notice of Draftsperson's Patent Drawing Review ( PTO-948) attached 

1) □ hereto or 2) □ to Paper No./Mail Date . 

(b) □ including changes required by the attached Examiner's Amendment / Comment or in the Office action of 

Paper No./Mail Date . 

Identifying indicia such as the application number (see 37 CFR 1.84(c)) should be written on the drawings in the front (not the back) of 
each sheet. Replacement sheet(s) should be labeled as such in the header according to 37 CFR 1.121(d). 

6. □ DEPOSIT OF and/or INFORMATION about the deposit of BIOLOGICAL MATERIAL must be submitted. Note the 

attached Examiner's comment regarding REQUIREMENT FOR THE DEPOSIT OF BIOLOGICAL MATERIAL. 
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DETAILED ACTION 

1 . This Office Action is taken in response to Applicants' Amendments and Remarks 
filed on January 15, 2009 regarding application 09/923,727 filed on August 6, 2001. 

2. Claims 3-9, 11,1 3-23, 26, 30-46, 49, 53-54, 56-66, 70-79, 81 and 84-1 01 are 
pending under consideration. 

EXAMINER'S AMENDMENT 

3. An examiner's amendment to the record appears below. Should the changes 
and/or additions be unacceptable to applicant, an amendment may be filed as provided 
by 37 CFR 1 .312. To ensure consideration of such an amendment, it MUST be 
submitted no later than the payment of the issue fee. 

4. Authorization for this examiner's amendment was given in a telephone interview 
with Ellen M. Bierman (Reg. No. 38,079) on 03/12/2009. 

Claims 3, 32, 54, 72, 79, 84 and 93 are to be amended as shown below: 

5. Claim 3 is now amended to be: 

3. (Currently Amended) A method in a computer system for automatically protecting 
data stored in a portion of a storage device having a designated protected space, the 
computer system having a designated unprotected space and a redirected space, 
comprising: 

loading a software redirection driver into an input/output driver hierarchy loaded 
in a volatile memory of the computer system during power-up initialization, wherein the 
software redirection driver is an input/output driver; and 
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under control of code of the loaded software redirection driver, redirecting 
input/output requests by: 

intercepting from requesting code that is external to the loaded software 
redirection driver a request to modify a location in the protected space or a location in 
the unprotected space; 

when the request is to modify a location in the unprotected space, initiating 
modification of the location in the unprotected space without redirection; 

when the request is to modify a location in the protected space, 

determining a location in the redirected space that is associated with the location 
in the protected space; and 

redirecting the intercepted request to modify the determined location in the 
redirected space instead of the location in the protected space; 

in response to a r-eeeived request to shutdown the computer system, 
disregarding the data in the redirected space; 

after the disregarding of the data in the redirected space, intercepting from 
requesting code a request to read the location in the protected space; and 
in response to the intercepting of the request to read the location in the protected space, 
providing data from the location in the protected space instead of providing data from 
the redirected space, so that the data stored in the location in the protected space 
automatically remains unaltered when the computer system is restarted from a 
powered-down state. 

6. Claim 32 is now amended to be: 
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32. (Currently Amended) A computer-readable memory medium containing program 
code that controls a computer processor to protect data stored in a portion of a storage 
device having a designated protected space, the computer system having a designated 
unprotected space and a redirected space, by performing a method comprising: 

loading a software redirection driver into an input/output driver hierarchy loaded 
in a volatile memory of the computer system during power-up initialization, wherein the 
software redirection driver is an input/output driver; and 

under control of code of the loaded software redirection driver, redirecting 
input/output requests by: 

intercepting from requesting code that is external to the loaded software 
redirection driver a request to modify a location in the protected space or a location in 
the unprotected space; 

when the request is to modify a location in the unprotected space, initiating 
modification of the location in the unprotected space without redirection; and 

when the request is to modify a location in the protected space, 

determining a location in the redirected space that is associated with the location 
in the protected space; and 

redirecting the intercepted request to modify the determined location in the 
redirected space instead of the location in the protected space, 

in response to a rece i ved - request to shutdown the computer system, 
disregarding the data in the redirected space; 
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after the disregarding of the data in the redirected space, intercepting from 
requesting code a request to read the location in the protected space; and 

in response to the intercepting of the request to read the location in the 
unprotected space, providing data from the location in the protected space instead of 
providing data from the redirected space, so that the data stored in the location in the 
protected space automatically remains unaltered when the computer system is restarted 
from a powered-down state. 

7. Claim 54 is now amended to be: 

54. (Currently Amended) A computer system for automatically protecting data stored 
in a portion of a storage device, comprising: 

a protected space on the storage device for storing the protected data; 

an unprotected space; 

redirected storage space in the computer system designated for storing 
attempted modifications of the protected data; and 

a software redirection driver that redirects input/output requests, loaded into an 
input/output driver hierarchy loaded in a volatile memory of the computer system when 
the system is booted from a powered-down state, wherein the software redirection 
driver is an input/output driver including code that, when executed, is configured to: 

intercept from requesting code that is external to the software redirection driver a 
request to modify a location in the protected space or a location in the unprotected 
space; 
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when the request is to modify a location in the unprotected space, initiate 
modification of the location in the unprotected space without redirection; 

when it is determined that the request is to modify a location in the protected 
space, redirect the request so that the request results in modifying a location in the 
redirected storage space instead of the location in the protected space; 

in response to a fee- e iv e si- request to shutdown the computer system, 
disregarding the data in the redirected space; 

after the disregarding of the data in the redirected storage space, intercepting 
from the requesting code a request to read the location in the protected space; and 

in response to the intercepting of the request to read the location in the protected 
space, providing data from the location in the protected space instead of providing data 
from the redirected space, so that the location in the protected space automatically 
remains unaltered when the computer system is restarted from a powered-down state. 
8. Claim 72 is now amended to be: 

72. (Currently Amended) A method for protecting data in a storage device of a 
computer system having an operating system, a device driver, an unprotected space, 
and a storage device having a designated protected space, comprising: 

loading a software redirection driver into a volatile memory of the computer 
system during power-up initialization; 

installing the software redirection driver before the device driver in a calling 
sequence of the operating system, so that the operating system invokes the redirection 
driver in response to receiving a request to access the storage device; 
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under control of the redirection driver, 

intercepting from requesting code that is external to the redirection driver a 
request to modify a location referred to by a protected space redirection table or a 
location referred to by an unprotected space table; 

when the request is to modify a location referred to by the unprotected space 
table, initiating modification of the location in the unprotected space without redirection; 
and 

when the request is to modify a location referred to by the protected space 
redirection table, redirecting the request to modify a location in unused storage 
associated with the location referred to by the protected space redirection table, such 
that the data in the location in the protected space remains unaltered; 

in response to a fee-eived-request to shutdown the computer system, 
disregarding data in the location in the unused storage; 

after the disregarding of the data in the location in the unused storage, 
intercepting from the requesting code a request to read the location in the protected 
space; and 

in response to the intercepting of the request to read the location in the protected 
space, providing data from the location in protected space instead of providing data 
from the location in the unused storage, so that the data stored in the location in the 
protected space automatically remains unaltered when the computer system is restarted 
from a powered-down state. 

9. Claim 79 is now amended to be: 
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79. (Currently Amended) A storage access redirection system for protecting data in 
designated locations on a storage device in a computer system, comprising: 
an available space table; 

a protected space redirection table that is used to designate protected locations 
on the storage device that are to be protected from modification; 

an unprotected space table that is used to designate unprotected locations on 
the storage device that can be altered, wherein the available space table, the protected 
space redirection table, and the unprotected space table are separate and distinct from 
each other; and 

a software redirection driver, installed in a volatile memory of the computer 
system upon power-up initialization, that when executed, is configured to: 

automatically intercept a request to modify one of the designated protected 
locations or to modify a location referred to by the unprotected space table; 

when the request is to modify a location referred to by the unprotected space 
table, disregard the request so that data in the location referred to by the unprotected 
space table is modified according to the request; en4 

when the request is to modify one of the designated protected locations, 

use the protected space redirection table to determine whether the designated 
protected location has been previously redirected; 

when it is determined that the designated protected location has been previously 
redirected, 
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determine an associated redirected location referred to by the protected space 
redirection table; and 

redirect the request to the associated redirected location; and 

when it is determined that the designated protected location has not been 
previously redirected, 

allocate a new redirected location based on the available space table; 

redirect the request to modify one of the designated protected locations to the 
new redirected location; 

record a reference to the new redirected location in the protected space 
redirection table ; and 

remove the reference to the new redirected location from the available space 
table; and 

in response to a request to shutdown the computer system, disregarding the data 
in the protected space redirection table; 

after the disregarding of the data in the protected space redirection table, 
intercepting from requesting code a request to read the one of the designated protected 
locations on the storage device; and 

in response to the intercepting of the request to read the one of the designated 
locations, providing data from the one of the designated protected locations on the 
storage device instead of providing data from a location referred to by the protected 
space redirection table, so that the data stored in the one of the designated protected 
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locations on the storage device automatically remains unaltered when the computer 

system is restarted from a powered-down state . 

10. Claim 84 is now amended to be: 

84. (Currently Amended) A method in a computer system for automatically protecting 
data stored in a portion of a storage device having a designated protected space, the 
computer system having a designated unprotected space and a redirected space, 
comprising: 

loading a software redirection driver into an input/output driver hierarchy loaded 
in a volatile memory of the computer system during power-up initialization, wherein the 
software redirection driver is an input/output driver; and 

under control of code of the loaded software redirection driver, redirecting 
input/output requests by: 

intercepting from requesting code that is external to the loaded software 
redirection driver a request to modify a location in protected space referred to by a 
protected space redirection table or a location in unprotected space referred to by an 
unprotected space table; 

when the request is to modify a location in unprotected space referred to by the 
unprotected space table, initiating modification of the location in the unprotected space 
without redirection; 

when the request is to modify a location in protected space referred to by the 
protected space redirection table, 



Application/Control Number: 09/923,727 Page 1 1 

Art Unit: 2186 

determining, based on the protected space redirection table, a location in the 
redirected space that is mapped to the location in the protected space; and- 

redirecting the intercepted request to modify the determined location in the 
redirected space instead of the location in the protected space; 

in response to a request to shutdown the computer system, disregarding the data 
in the redirected space: 

after the disregarding of the data in the redirected space, intercepting from 
requesting code a request to read the location in the protected space: and 

in response to the intercepting of the request to read the location in the protected 
space, providing data from the location in the protected space instead of providing data 
from the redirected space , so that the data stored in the location in the protected space 
automatically remains unaltered when the computer system is restarted from a 
powered-down state. 

11. Claim 93 is now amended to be: 

93. (Currently Amended) A computer-readable memory medium containing program 
code that controls a computer processor to protect data stored in a portion of a storage 
device having a designated protected space, the computer system having a designated 
unprotected space and a redirected space, by performing a method comprising: 

loading a software redirection driver into an input/output driver hierarchy loaded 
in a volatile memory of the computer system during power-up initialization, wherein the 
software redirection driver is an input/output driver; and 
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under control of code of the loaded software redirection driver, redirecting 
input/output requests by: 

intercepting from requesting code that is external to the loaded software 
redirection driver a request to modify a location in protected space referred to by a 
protected space redirection table or a location in unprotected space referred to by an 
unprotected space table; 

when the request is to modify a location in unprotected space referred to by the 
unprotected space table, initiating modification of the location in the unprotected space 
without redirection; 

when the request is to modify a location in protected space referred to by the 
protected space redirection table, 

determining, based on the protected space redirection table, a location in the 
redirected space that is mapped to the location in the protected space; m4 

redirecting the intercepted request to modify the determined location in the 
redirected space instead of the location in the protected space; 

in response to a request to shutdown the computer system, disregarding the data 
in the redirected space; 

after the disregarding of the data in the redirected space, intercepting from 
requesting code a request to read the location in the protected space; and 

in response to the intercepting of the request to read the location in the protected 
space, providing data from the location in the protected space instead of providing data 
from the redirected space , so that the data stored in the location in the protected space 
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automatically remains unaltered when the computer system is restarted from a 
powered-down state. 

Allowable Subject Matter 

12. Claims 3-9, 11,1 3-23, 26, 30-46, 49, 53-54, 56-66, 70-79, 81 and 84-1 01 are 
allowed. 

Conclusion 

13. Claims 3-9, 11, 13-23, 26, 30-46, 49, 53-54, 56-66, 70-79, 81 and 84-101 are 
allowed. 

14. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Sheng-Jen Tsai whose telephone number is 571-272- 
4244. The examiner can normally be reached on 8:30 - 5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Matthew Kim can be reached on 571-272-4182. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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